$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/B1335F1AC56A11ED9C305A33C4F9AE02.roa File: B1335F1AC56A11ED9C305A33C4F9AE02.roa (raw, json) Hash identifier: 89tg93/qvyRfNlsV5jj75ONUo2PDbucb+SsFfLo6D58= Subject key identifier: 2D:07:72:67:31:30:10:84:10:E7:4B:0B:D0:1E:BB:36:B7:9A:3A:6E Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: CA Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/B1335F1AC56A11ED9C305A33C4F9AE02.roa Signing time: Wed 21 Feb 2024 05:17:28 +0000 ROA not before: Wed 21 Feb 2024 05:17:28 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 150774 IP address blocks: 103.84.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:31:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Feb 21 05:17:28 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d58768-83ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:07:07:23:04:19:85:27:c8:d0:56:5a:dd:ac: 63:54:1f:8b:17:de:79:56:8e:b7:28:42:c7:79:e0: 04:c3:07:75:76:ca:d0:55:ad:cc:c1:85:91:cb:44: 21:31:ca:30:2f:f5:57:c0:3a:11:cb:aa:7f:80:37: 93:7c:6a:38:41:1a:73:f7:94:e1:36:e3:e5:5c:96: 62:6d:31:dd:54:45:6f:e6:40:8a:4e:6e:04:6c:51: 6f:00:a9:db:75:cc:36:62:32:2b:2d:87:44:37:4d: 1d:a1:13:50:be:da:d4:48:09:0d:bd:96:fe:33:f4: 3c:b3:f0:d2:c2:fd:8f:7d:e8:e6:fe:ab:54:39:ac: a9:3a:2c:51:b5:d7:7f:e2:9f:27:0e:94:d9:38:4d: cc:a1:e0:79:b4:d3:38:b0:b4:92:b5:2c:7a:3d:c7: 2c:3d:3d:90:26:e2:15:a4:94:bc:be:f8:0c:07:36: 65:29:f5:4e:b1:a5:20:8e:0e:bd:e1:4b:30:8d:b4: 42:00:11:a6:ce:67:f6:65:f9:b4:5f:02:db:0c:6d: 84:e7:69:de:3c:25:9c:ba:1e:57:9a:93:ce:e5:9a: eb:26:40:3c:59:f2:7c:d0:86:48:76:68:1c:85:41: 07:be:69:de:17:cd:75:c8:d6:6c:55:6a:80:a3:59: a2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:07:72:67:31:30:10:84:10:E7:4B:0B:D0:1E:BB:36:B7:9A:3A:6E X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/B1335F1AC56A11ED9C305A33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.59.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:5e:4a:73:f3:a8:bb:8d:36:f6:54:7d:ea:0d:bd:f7:9f:78: 30:c7:12:58:09:17:04:26:26:be:b5:5b:23:3c:e5:b0:28:e0: 6f:8c:76:1c:9d:4f:d0:b3:1d:d1:1b:2b:1e:1c:e3:ae:30:a2: 9e:6b:4d:87:4e:3e:1d:1c:7a:48:8b:70:86:f3:f3:68:45:ba: 85:ad:55:8f:6a:3c:83:ea:3b:9e:03:be:78:df:d1:47:8f:d1: bd:ec:d8:98:55:fb:b2:9c:85:ec:9c:6d:7c:12:ea:fa:cd:3c: 08:8a:e3:74:ff:55:48:8f:d6:9f:71:84:e8:ad:92:16:06:32: 2f:7c:6c:c2:87:4f:45:14:20:49:58:dc:88:35:ea:2d:20:67: ae:6d:90:d8:6c:5b:1f:6a:dd:99:29:66:5d:f0:41:b0:9b:52: 94:9a:ad:42:53:04:8b:b0:ee:92:60:3e:8c:88:fc:e5:3e:49: 8a:ac:05:23:66:5a:e6:2e:fd:f1:ea:cc:1a:c1:6c:9a:d2:13: 30:29:aa:31:d3:31:0c:d9:8f:c1:e6:18:4e:c1:1d:5b:6d:c2: c0:a7:7d:28:58:70:7b:09:23:78:4d:5c:fa:00:db:ce:e5:e8: 94:da:4e:99:d6:4d:92:3e:34:ed:1d:ab:6f:d8:95:11:01:e1: 9f:e0:e0:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjQwMjIxMDUxNzI4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ1ODc2OC04M2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wcHIwQZhSfI0FZa3axjVB+LF955Vo63KELHeeAEwwd1dsrQVa3MwYWRy0Qh McowL/VXwDoRy6p/gDeTfGo4QRpz95ThNuPlXJZibTHdVEVv5kCKTm4EbFFvAKnb dcw2YjIrLYdEN00doRNQvtrUSAkNvZb+M/Q8s/DSwv2Pfejm/qtUOaypOixRtdd/ 4p8nDpTZOE3MoeB5tNM4sLSStSx6PccsPT2QJuIVpJS8vvgMBzZlKfVOsaUgjg69 4UswjbRCABGmzmf2Zfm0XwLbDG2E52nePCWcuh5XmpPO5ZrrJkA8WfJ80IZIdmgc hUEHvmneF811yNZsVWqAo1miDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC0Hcmcx MBCEEOdLC9Aeuza3mjpuMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUIzMTAvM0VCRDE3QzJBRDEwMTFFRDg1NEEzRTFEQzRGOUFFMDIvQjEzMzVGMUFD NTZBMTFFRDlDMzA1QTMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVDswDQYJKoZIhvcNAQELBQADggEBAAxeSnPzqLuNNvZU feoNvfefeDDHElgJFwQmJr61WyM85bAo4G+MdhydT9CzHdEbKx4c464wop5rTYdO Ph0cekiLcIbz82hFuoWtVY9qPIPqO54Dvnjf0UeP0b3s2JhV+7KcheycbXwS6vrN PAiK43T/VUiP1p9xhOitkhYGMi98bMKHT0UUIElY3Ig16i0gZ65tkNhsWx9q3Zkp Zl3wQbCbUpSarUJTBIuw7pJgPoyI/OU+SYqsBSNmWuYu/fHqzBrBbJrSEzApqjHT MQzZj8HmGE7BHVttwsCnfShYcHsJI3hNXPoA287l6JTaTpnWTZI+NO0dq2/YlREB 4Z/g4Ng= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:44 2024 by rpki-client on console-fra.rpki-client.org